城市(city): unknown
省份(region): unknown
国家(country): None
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.245.99.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51739
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.245.99.164. IN A
;; AUTHORITY SECTION:
. 338 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400
;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 20:50:55 CST 2022
;; MSG SIZE rcvd: 106
164.99.245.13.in-addr.arpa domain name pointer ec2-13-245-99-164.af-south-1.compute.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
164.99.245.13.in-addr.arpa name = ec2-13-245-99-164.af-south-1.compute.amazonaws.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 129.204.90.220 | attack | Sep 5 00:51:44 sachi sshd\[4719\]: Invalid user rodomantsev from 129.204.90.220 Sep 5 00:51:44 sachi sshd\[4719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.90.220 Sep 5 00:51:46 sachi sshd\[4719\]: Failed password for invalid user rodomantsev from 129.204.90.220 port 55858 ssh2 Sep 5 00:56:51 sachi sshd\[5117\]: Invalid user test2 from 129.204.90.220 Sep 5 00:56:51 sachi sshd\[5117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.90.220 |
2019-09-06 02:31:18 |
| 92.222.92.114 | attackbotsspam | Sep 5 08:27:59 web1 sshd\[4513\]: Invalid user ts3server from 92.222.92.114 Sep 5 08:27:59 web1 sshd\[4513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.92.114 Sep 5 08:28:01 web1 sshd\[4513\]: Failed password for invalid user ts3server from 92.222.92.114 port 57014 ssh2 Sep 5 08:32:16 web1 sshd\[4846\]: Invalid user ts3 from 92.222.92.114 Sep 5 08:32:16 web1 sshd\[4846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.92.114 |
2019-09-06 02:36:00 |
| 103.91.181.25 | attackbots | Sep 5 14:28:41 vps691689 sshd[26060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.91.181.25 Sep 5 14:28:43 vps691689 sshd[26060]: Failed password for invalid user 123456 from 103.91.181.25 port 43762 ssh2 ... |
2019-09-06 02:35:13 |
| 185.175.93.18 | attack | firewall-block, port(s): 9304/tcp, 19902/tcp, 23404/tcp |
2019-09-06 02:52:38 |
| 51.38.22.237 | attackbotsspam | Sep 5 20:06:53 bouncer sshd\[6786\]: Invalid user debian from 51.38.22.237 port 43314 Sep 5 20:06:53 bouncer sshd\[6786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.22.237 Sep 5 20:06:54 bouncer sshd\[6786\]: Failed password for invalid user debian from 51.38.22.237 port 43314 ssh2 ... |
2019-09-06 02:38:17 |
| 62.210.149.30 | attackbotsspam | \[2019-09-05 10:25:49\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-05T10:25:49.396-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="12312520187",SessionID="0x7f7b3093e578",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/5070",ACLName="no_extension_match" \[2019-09-05 10:30:33\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-05T10:30:33.986-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="912312520187",SessionID="0x7f7b30d66ff8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/5070",ACLName="no_extension_match" \[2019-09-05 10:35:46\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-05T10:35:46.138-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01112312520187",SessionID="0x7f7b3093e578",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/5070",ACLName="no_extension_matc |
2019-09-06 02:47:10 |
| 91.197.57.196 | attackspambots | [portscan] Port scan |
2019-09-06 02:48:22 |
| 200.115.204.184 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-09-06 02:59:41 |
| 14.204.136.125 | attack | Sep 4 23:42:10 tdfoods sshd\[31620\]: Invalid user test from 14.204.136.125 Sep 4 23:42:10 tdfoods sshd\[31620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Sep 4 23:42:12 tdfoods sshd\[31620\]: Failed password for invalid user test from 14.204.136.125 port 51250 ssh2 Sep 4 23:47:42 tdfoods sshd\[32078\]: Invalid user ts3server from 14.204.136.125 Sep 4 23:47:42 tdfoods sshd\[32078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 |
2019-09-06 02:47:41 |
| 184.75.221.115 | attackspambots | Port Scan: TCP/80 |
2019-09-06 02:59:02 |
| 192.3.177.213 | attack | Sep 5 08:50:34 auw2 sshd\[10035\]: Invalid user uftp@123 from 192.3.177.213 Sep 5 08:50:34 auw2 sshd\[10035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.177.213 Sep 5 08:50:36 auw2 sshd\[10035\]: Failed password for invalid user uftp@123 from 192.3.177.213 port 35268 ssh2 Sep 5 08:54:55 auw2 sshd\[10428\]: Invalid user fctrserver from 192.3.177.213 Sep 5 08:54:55 auw2 sshd\[10428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.177.213 |
2019-09-06 02:56:43 |
| 139.59.95.216 | attackspambots | Sep 5 08:15:40 tdfoods sshd\[11814\]: Invalid user ftptest from 139.59.95.216 Sep 5 08:15:40 tdfoods sshd\[11814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216 Sep 5 08:15:43 tdfoods sshd\[11814\]: Failed password for invalid user ftptest from 139.59.95.216 port 49262 ssh2 Sep 5 08:20:56 tdfoods sshd\[12232\]: Invalid user admin from 139.59.95.216 Sep 5 08:20:56 tdfoods sshd\[12232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216 |
2019-09-06 02:29:38 |
| 102.65.149.25 | attackspam | DATE:2019-09-05 16:44:49, IP:102.65.149.25, PORT:ssh SSH brute force auth (ermes) |
2019-09-06 02:54:13 |
| 80.76.240.168 | attackbotsspam | Brute force attempt |
2019-09-06 02:36:47 |
| 176.159.245.147 | attack | Sep 5 21:07:47 site3 sshd\[107394\]: Invalid user steam from 176.159.245.147 Sep 5 21:07:47 site3 sshd\[107394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.159.245.147 Sep 5 21:07:49 site3 sshd\[107394\]: Failed password for invalid user steam from 176.159.245.147 port 48084 ssh2 Sep 5 21:12:17 site3 sshd\[107476\]: Invalid user postgres from 176.159.245.147 Sep 5 21:12:17 site3 sshd\[107476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.159.245.147 ... |
2019-09-06 02:26:59 |